Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/03/28 12:25 a.m.•14 views

SUSE CVE-2026-33535

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 display interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the issue...

4CVSS5.9AI score0.00141EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/25 4:56 p.m.•14 views

SUSE CVE-2026-23334

In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: handle short interrupt urb messages properly If an interrupt urb is received that is not the correct length, properly detect it and don't attempt to treat the data as valid...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/03/25 11:53 a.m.•14 views

SUSE CVE-2026-4701

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

6.3CVSS7.2AI score0.00461EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/02/16 1:5 a.m.•14 views

SUSE CVE-2023-53579

In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix irq domain leak Uwe Kleine-K�nig pointed out we still have one resource leak in the mvebu driver triggered on driver detach. Let's address it with a custom devm action...

5.5CVSS5.8AI score0.00138EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/16 12:26 a.m.•14 views

SUSE CVE-2026-23149

In the Linux kernel, the following vulnerability has been resolved: drm: Do not allow userspace to trigger kernel warnings in drmgemchangehandleioctl Since GEM bo handles are u32 in the uapi and the internal implementation uses idralloc which uses int ranges, passing a new handle larger than INTM...

5.5CVSS5.2AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/04 12:26 a.m.•14 views

SUSE CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

6.5CVSS7.9AI score0.00223EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/30 12:26 a.m.•14 views

SUSE CVE-2026-22039

Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have a critical authorization boundary bypass in namespaced Kyverno Policy apiCall. The resolved urlPath is executed using the Kyverno admission controller ServiceAccount, with no...

9.9CVSS5.9AI score0.00516EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/01/26 12:24 a.m.•14 views

SUSE CVE-2026-23001

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlanforwardsource Add RCU protection on struct macvlansourceentry-vlan. Whenever macvlanhashdelsource is called, we must clear entry-vlan pointer before RCU grace period starts. This allows...

7CVSS5.3AI score0.00188EPSS
Exploits0References32
SUSE CVE
SUSE CVE
•added 2026/01/26 12:24 a.m.•14 views

SUSE CVE-2026-23012

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: remove callcontrol in inactive contexts If damoncall is executed against a DAMON context that is not running, the function returns error while keeping the damoncallcontrol object linked to the context's callcontrol...

7.8CVSS5.3AI score0.00151EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/31 12:32 a.m.•14 views

SUSE CVE-2022-50786

In the Linux kernel, the following vulnerability has been resolved: media: s5p-mfc: Clear workbit to handle error condition During error on CLOSEINSTANCE command, ctxworkbits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/31 12:32 a.m.•14 views

SUSE CVE-2022-50813

In the Linux kernel, the following vulnerability has been resolved: drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only...

6.5AI score0.00233EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 1:5 a.m.•14 views

SUSE CVE-2022-50713

In the Linux kernel, the following vulnerability has been resolved: clk: visconti: Fix memory leak in viscontiregisterpll @pll-ratetable has allocated memory by kmemdup, if clkhwregister fails, it should be freed, otherwise it will cause memory leak issue, this patch fixes it...

6.5AI score0.00198EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•14 views

SUSE CVE-2023-54003

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix GID entry ref leak when createah fails If AH create request fails, release sgidattr to avoid GID entry referrence leak reported while releasing GID table...

3.3CVSS6.5AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•14 views

SUSE CVE-2025-68203

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.1AI score0.00024EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/12 1:24 a.m.•14 views

SUSE CVE-2002-1219

Buffer overflow in named in BIND 4 versions 4.9.10 and earlier, and 8 versions 8.3.3 and earlier, allows remote attackers to execute arbitrary code via a certain DNS server response containing SIG resource records RR...

7.5CVSS8.2AI score0.12322EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:39 a.m.•14 views

SUSE CVE-2022-50632

In the Linux kernel, the following vulnerability has been resolved: drivers: perf: marvellcn10k: Fix hotplug callback leak in tadpmuinit tadpmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path...

5.5CVSS6.5AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:38 a.m.•14 views

SUSE CVE-2022-50653

In the Linux kernel, the following vulnerability has been resolved: mmc: atmel-mci: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehos...

5.5CVSS6.5AI score0.00179EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/08 12:23 a.m.•14 views

SUSE CVE-2025-40269

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential overflow of PCM transfer buffer The PCM stream data in USB-audio driver is transferred over USB URB packet buffers, and each packet size is determined dynamically. The packet sizes are limited by so...

5.5CVSS6.8AI score0.00222EPSS
Exploits0References26
SUSE CVE
SUSE CVE
•added 2025/11/28 12:22 a.m.•14 views

SUSE CVE-2025-64334

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2....

7.5CVSS6.8AI score0.00306EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/01 11:23 p.m.•14 views

SUSE CVE-2025-39902

In the Linux kernel, the following vulnerability has been resolved: mm/slub: avoid accessing metadata when pointer is invalid in objecterr objecterr reports details of an object for further debugging, such as the freelist pointer, redzone, etc. However, if the pointer is invalid, attempting to...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/08 11:22 p.m.•14 views

SUSE CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

5.5CVSS6.5AI score0.00135EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•14 views

SUSE CVE-2025-38706

In the Linux kernel, the following vulnerability has been resolved: ASoC: core: Check for rtd == NULL in sndsocremovepcmruntime sndsocremovepcmruntime might be called with rtd == NULL which will leads to null pointer dereference. This was reproduced with topology loading and marking a link as...

4.7CVSS6.4AI score0.00179EPSS
Exploits0References26
SUSE CVE
SUSE CVE
•added 2025/05/21 12:47 a.m.•14 views

SUSE CVE-2025-37920

In the Linux kernel, the following vulnerability has been resolved: xsk: Fix race condition in AFXDP generic RX path Move rxlock from xsksocket to xskbuffpool. Fix synchronization for shared umem mode in generic RX path where multiple sockets share single xskbuffpool. RX queue is exclusive to...

4.5CVSS7.8AI score0.00119EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/02/28 2:21 a.m.•14 views

SUSE CVE-2025-21760

In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndiscsendskb ndiscsendskb can be called without RTNL or RCU held. Acquire rcureadlock earlier, so that we can use devnetrcu and avoid a potential UAF...

5.5CVSS6.7AI score0.09117EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/01/12 12:18 a.m.•14 views

SUSE CVE-2024-47143

In the Linux kernel, the following vulnerability has been resolved: dma-debug: fix a possible deadlock on radixlock radixlock shouldn't be held while holding dmahashentryidx.lock otherwise, there's a possible deadlock scenario when dma debug API is called holding rqlock: CPU0 CPU1 CPU2 dmafreeatt...

4.1CVSS7.6AI score0.0017EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2024/12/14 4:13 a.m.•14 views

SUSE CVE-2024-12455

unknown...

7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2024/10/21 3:47 p.m.•14 views

SUSE CVE-2024-47699

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential null-ptr-deref in nilfsbtreeinsert Patch series "nilfs2: fix potential issues with empty b-tree nodes". This series addresses three potential issues with empty b-tree nodes that can occur with corrupted...

5.5CVSS6.7AI score0.00261EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2024/10/21 3:46 p.m.•14 views

SUSE CVE-2024-47749

In the Linux kernel, the following vulnerability has been resolved: RDMA/cxgb4: Added NULL check for lookupatid The lookupatid function can return NULL if the ATID is invalid or does not exist in the identifier table, which could lead to dereferencing a null pointer without a check in the...

5.5CVSS6.4AI score0.00231EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2024/09/28 2:51 a.m.•14 views

SUSE CVE-2024-46828

In the Linux kernel, the following vulnerability has been resolved: sched: schcake: fix bulk flow accounting logic for host fairness In schcake, we keep track of the count of active bulk flows per host, when running in dst/src host fairness mode, which is used as the round-robin weight when...

5.5CVSS6.4AI score0.0025EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2024/09/07 3:38 a.m.•14 views

SUSE CVE-2023-52915

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035i2cmasterxfer In af9035i2cmasterxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally...

5.5CVSS6.3AI score0.00211EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2024/08/18 2:2 a.m.•14 views

SUSE CVE-2024-42305

In the Linux kernel, the following vulnerability has been resolved: ext4: check dot and dotdot of dxroot before making dir indexed Syzbot reports a issue as follows: ============================================ BUG: unable to handle page fault for address: ffffed11022e24fe PGD 23ffee067 P4D...

5.5CVSS6.3AI score0.00224EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2024/08/06 2:0 a.m.•14 views

SUSE CVE-2024-42095

In the Linux kernel, the following vulnerability has been resolved: serial: 8250omap: Implementation of Errata i2310 As per Errata i23100, Erroneous timeout can be triggered, if this Erroneous interrupt is not cleared then it may leads to storm of interrupts, therefore apply Errata i2310 solution...

5.5CVSS6.4AI score0.0021EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2024/06/13 4:0 a.m.•14 views

SUSE CVE-2024-5837

Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.8AI score0.00525EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2024/05/21 2:2 a.m.•14 views

SUSE CVE-2023-52678

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Confirm list is non-empty before utilizing listfirstentry in kfdtopology.c Before using listfirstentry, make sure to check that list is not empty, if list is empty return -ENODATA. Fixes the below:...

5.5CVSS6.3AI score0.00232EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/04/20 2:8 a.m.•14 views

SUSE CVE-2024-26872

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srptrefreshport. This seems to be because an event handler is registered before the srpt devic...

5.5CVSS6.3AI score0.00235EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2024/04/15 11:12 p.m.•14 views

SUSE CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

9.8CVSS8AI score0.01063EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2023/09/07 2:35 a.m.•14 views

SUSE CVE-2023-4764

Incorrect security UI in BFCache in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: High...

6.5CVSS8.4AI score0.01044EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2023/02/15 5:55 a.m.•14 views

SUSE CVE-2010-4508

The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors, related to an "inherent problem" with the WebSocket specification...

10CVSS7AI score0.01299EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2023/02/15 4:9 a.m.•14 views

SUSE CVE-2019-14523

An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a large plen in fmtoktloadsong in the Amiga Oktalyzer parser in fmt/okt.c...

7.8CVSS7.5AI score0.01238EPSS
Exploits1References5
SUSE CVE
SUSE CVE
•added 2023/02/15 3:36 a.m.•14 views

SUSE CVE-2021-45046

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map MDC input data when the logging configuration uses a non-default Pattern Layout with either a Context...

8.1CVSS7.3AI score0.99977EPSS
Exploits40References5
SUSE CVE
SUSE CVE
•added 2023/02/15 3:22 a.m.•14 views

SUSE CVE-2022-47519

An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211P2PATTROPERCHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger an out-of-bounds write when parsing the channel list attribute from Wi-Fi management frame...

7.8CVSS6.7AI score0.00298EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 3 days ago•13 views

SUSE CVE-2026-54059

Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py loadbitmaps read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes without calling Image.decompressionbombcheck, allowing crafted PCF font data to cause excessive memory allocation. Thi...

7.5CVSS6AI score0.00354EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 3 days ago•13 views

SUSE CVE-2026-13799

Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. Chromium security severity: High...

8.1CVSS6AI score0.00298EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/06/30 1:49 a.m.•13 views

SUSE CVE-2026-13434

A flaw was found in KubeVirt's network annotation generator. When a tenant creates a VirtualMachineInstance with a Multus network configuration, the supplied networkName value is written verbatim into the launcher pod's v1.multus-cni.io/default-network annotation without format validation or...

4.9CVSS5.9AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•13 views

SUSE CVE-2026-48706

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, a vulnerability exists in Envoy's TCP StatsD sink TcpStatsdSink, where the thread-local flusher buffer can be overflowed by exceptionally long statistic...

7.5CVSS6.5AI score0.0061EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/06/28 1:8 a.m.•13 views

SUSE CVE-2026-53322

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disabling function On device shutdown, make vfiopcicoreclosedevice call vfiopcidmabufcleanup before the function is disabled via vfiopcicoredisable. This ensures that all access via DMABUFs is...

8.8CVSS5.8AI score0.00182EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/26 2:46 a.m.•13 views

SUSE CVE-2023-54365

Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handling inherited from the Go standard library's HTTP/2 implementation CVE-2023-44487 / CVE-2023-39325, the 'Rapid Reset' technique. A remote attacker can rapidly create and cancel HTTP/2...

8.7CVSS5.9AI score0.00566EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/20 2:35 a.m.•13 views

SUSE CVE-2026-12044

SQL injection in pgAdmin 4 across every dialog template that renders COMMENT ON ... IS '' for a user-supplied description field. The Jinja templates for Domains and their constraints, Foreign Tables, Languages, and Event Triggers, plus the Views OID-lookup query, interpolated the description...

8.8CVSS5.9AI score0.00489EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/20 2:30 a.m.•13 views

SUSE CVE-2026-44663

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, an integer overflow in htundoimpl in src/lib/OpenEXRCore/internalht.cpp leads to a heap-buffer overflow when decoding a crafted...

6.1CVSS5.7AI score0.00199EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/20 2:29 a.m.•13 views

SUSE CVE-2026-45696

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K High-Throughput JPEG 2000 decoder, htundoimpl in OpenEXRCore is vulnerable to a heap-buffer-overflow READ. The htundoimp...

6.1CVSS5.9AI score0.00263EPSS
Exploits1References3
Total number of security vulnerabilities5000